Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: snort datasctuctures

From: Matt Kettler <mkettler () evi-inc com>
Date: Wed, 01 Sep 2004 16:54:44 -0400
At 01:42 PM 9/1/2004, snort user wrote:

hi
i was going through the code of snort to understand the data structures that are being used to store the rules and then to detect. is there some material where i can get a head start on this? 

If you don't get an answer to your question, repeating it isn't going to help.
Check the whitepapers sourcefire has released on the website (linked from snort.org). The whitepapers on the detection engines at least give a high level view of what's going on which may be helpful when trying to read the code. Other than those, the source code is the only documentation.
Of course, I'm curious as to why your're looking at the code at this detailed of a level. Perhaps you might get some more helpful answers if you state what you're looking to do. 



-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=5047&alloc_id=10808&op=click
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: